[c-nsp] SERVICES DOWN DUE FAILURE TO SWITCHING
Hi all, There was this failure in SP network I work for which I can't make sense of Seamless MPLS has been deployed Networkwide, There is a cluster of access layer routers,let me take one of them as 'A'.Router 'A' is in Ospf Area 5,It has three bgp RRs,these RRs are in the same cluster ID,and they've peered to the network main RRs.All network RRs are in the same ISIS-L2 domain.One of Area 5 RRs is connected to another Ospf Area(Area 1) with Router 'B' which is also an RR for area 1 access routers,with both ISIS and Ospf connectivity.Router A has some MPLS L3VPN services available in Router B. It was working fine.Recently,there was a new direct link introduced between Router A and B.We decided to extend Area 5 to Router B via new direct link, without adding Router B as an RR.Traffic was flowing via that link with no any issue. Yesterday we had a failure in the new link between Router A and B and Traffic from A to B failed to switch to old path.Weird thing is some services switched to old path,many others didn't,and even weirder Router A hosting same services for different sites with same vrf for service (Routing Table) also had other sites ok,and others not ok. I analyzed routing at the time, nothing seemed to be wrong except some sites were up others were not in the same area/router.And situation autorestored itself after almost an hour. Anyone with more insight, kindly assist.Thanks in advance. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BGP router process using way more memory on one system
I'll leave this here incase it helps anyone but I was able to get it to respond to a few simple validation commands by just clearing a BGP session. Thanks, -Drew -Original Message- From: Nick Hilliard Sent: Monday, May 25, 2020 3:51 AM To: Drew Weaver Cc: 'cisco-nsp@puck.nether.net' Subject: Re: [c-nsp] BGP router process using way more memory on one system Drew Weaver wrote on 24/05/2020 19:20: > We have two routers that have a mirrored configuration. Peers, BGP > configuration, everything. Exactly the same [except for IP addresses] > > One of the routers BGP router process is holding 617576024. The other > is holding 577596716. > > The one that is holding more appears to be suffering from an out of > memory condition. There were a couple of releases where the ipv4_rib process had a persistent memory leak. Try this: Router# admin process restart ipv4_rib This is non service affecting - restarting the process temporarily stops FIB reprogramming, then does a full RIB reload from all RIB sources, then does a FIB check across the device. I.e. it's safer to do this than to hobble along with OOM errors. Nick ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] IOS-XR IS-IS authentication
On 27/May/20 21:08, Eric Van Tol wrote: > Unless I get suggestions otherwise, I suppose I'll just not use keys, which > seems prohibitive, particularly if a password needs changing at some point. > The 'lsp-password' without a key chain seems to work just fine. :-/ In IOS and IOS XE, we use key chains. In IOS XR, we use "lsp-password hmac-md5" at the "router isis" level, and "hello-password hmac-md5" at the "router isis 1 interface" level. Mark. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/